$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: FeYIWPthfmeL+AlcyyJfEEusQzap4qLk70c9KCKO5es= Subject key identifier: EA:32:52:CC:31:5E:6E:73:3C:CF:1F:12:E1:53:1F:F6:C2:66:6A:38 Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 3493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 348F Signing time: Sat 14 Jun 2025 14:51:47 +0000 Manifest this update: Sat 14 Jun 2025 14:51:47 +0000 Manifest next update: Sat 21 Jun 2025 14:51:47 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: UIuvfWBZIh0mZ3+57VP6QGSHYOBVk4nuKvONwv+Icc0=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13459 (0x3493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Jun 14 14:51:47 2025 GMT Not After : Jun 21 14:51:47 2025 GMT Subject: CN=684d8c83-7fcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f8:fa:b4:df:61:10:d4:38:f6:08:9b:c4:32: b9:07:09:98:3e:99:63:4a:8c:f1:7d:a9:19:57:ac: de:93:60:e8:ab:1c:f3:5a:91:bd:4b:f3:ff:17:32: 28:e4:f5:c3:16:fb:13:ea:83:04:a8:15:e1:8f:de: 60:f6:27:3a:6e:94:6d:c1:f2:96:a5:79:ac:17:e4: 58:b0:d3:a5:80:63:7a:e1:cd:0a:6c:bd:2d:94:76: b6:95:dd:3e:fa:05:b4:a1:97:be:81:24:ac:89:5c: 54:56:3f:02:ea:2d:5b:c7:22:78:d2:6b:a7:17:35: be:a4:57:1d:60:61:08:37:e4:e5:a2:4d:07:86:da: c7:86:cf:76:c2:44:f7:3c:49:5d:87:7e:9d:d6:11: 60:34:9f:9c:95:ca:97:9c:27:83:ac:ef:36:9d:0d: d9:c5:1e:9a:23:dc:02:5e:b4:3d:b9:91:34:4d:0b: e1:ae:ed:2e:ca:f4:97:6c:89:48:4f:79:2b:77:b4: 93:4c:e1:41:b9:52:25:1b:3c:e1:9a:aa:f0:cb:21: 66:b9:c4:d5:5a:91:09:e0:a0:64:a1:dd:6b:db:02: 15:ef:a8:7f:c5:d2:d8:c8:cc:23:5a:8d:ba:41:80: c9:33:22:b6:9d:3f:cd:4d:40:17:01:f5:7b:6b:69: 30:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:32:52:CC:31:5E:6E:73:3C:CF:1F:12:E1:53:1F:F6:C2:66:6A:38 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:55:34:ef:9d:a4:a2:c2:da:db:62:5f:26:7e:b6:cb:bb:e1: 11:68:f9:83:dc:9a:26:c6:70:8a:7c:90:52:58:63:57:7b:d1: da:c5:1a:d3:f5:57:71:80:25:d9:1e:94:8f:19:db:9c:ff:5b: 45:65:be:74:e0:2e:77:52:71:70:c4:d9:56:16:61:f1:8b:c8: 9a:c7:68:20:5d:11:0a:c3:2c:4a:05:5b:2e:c1:73:f8:6d:69: f8:66:3c:90:9e:2b:e5:c3:6f:50:cf:1a:13:f7:fb:c3:79:d1: b6:ab:9a:fe:c9:3b:0e:e3:14:89:b5:8f:29:72:ab:fa:22:da: 5d:cc:b2:57:a8:26:8a:e0:19:32:b9:ee:71:8d:3f:76:a0:2d: 6f:7d:21:81:3d:7a:a8:c5:e7:4f:7c:a9:8a:78:e7:e0:c1:dc: 16:59:4b:7a:c0:5e:b1:39:f1:a2:81:61:72:ee:e3:bf:2c:4d: 23:d0:fd:52:4d:10:dc:a7:16:e8:e6:63:37:4e:52:02:78:54: e9:d0:48:f9:07:97:38:b1:7e:c5:0e:12:14:eb:fb:ec:34:8e: c9:06:54:32:9d:8f:36:11:ba:0e:f6:e2:36:ec:04:d1:5f:80: 52:69:07:6f:72:ca:d6:eb:49:5d:d9:44:61:79:e8:0e:34:9c: a7:e4:d6:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwNjE0MTQ1MTQ3WhcNMjUwNjIxMTQ1MTQ3WjAYMRYwFAYD VQQDEw02ODRkOGM4My03ZmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/j6tN9hENQ49gibxDK5BwmYPpljSozxfakZV6zek2DoqxzzWpG9S/P/FzIo 5PXDFvsT6oMEqBXhj95g9ic6bpRtwfKWpXmsF+RYsNOlgGN64c0KbL0tlHa2ld0+ +gW0oZe+gSSsiVxUVj8C6i1bxyJ40munFzW+pFcdYGEIN+Tlok0HhtrHhs92wkT3 PEldh36d1hFgNJ+clcqXnCeDrO82nQ3ZxR6aI9wCXrQ9uZE0TQvhru0uyvSXbIlI T3krd7STTOFBuVIlGzzhmqrwyyFmucTVWpEJ4KBkod1r2wIV76h/xdLYyMwjWo26 QYDJMyK2nT/NTUAXAfV7a2kwDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoyUswx Xm5zPM8fEuFTH/bCZmo4MB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFVTTvnaSiwtrbYl8mfrbLu+ERaPmD3JomxnCKfJBSWGNXe9HaxRrT 9VdxgCXZHpSPGduc/1tFZb504C53UnFwxNlWFmHxi8iax2ggXREKwyxKBVsuwXP4 bWn4ZjyQnivlw29QzxoT9/vDedG2q5r+yTsO4xSJtY8pcqv6ItpdzLJXqCaK4Bky ue5xjT92oC1vfSGBPXqoxedPfKmKeOfgwdwWWUt6wF6xOfGigWFy7uO/LE0j0P1S TRDcpxbo5mM3TlICeFTp0Ej5B5c4sX7FDhIU6/vsNI7JBlQynY82EboO9uI27ATR X4BSaQdvcsrW60ld2URheegONJyn5Nal -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:35 2025 by rpki-client